%term

5 Things Holding Back Your Vulnerability Management Program and How to Overcome Them Step by Step

May 29, 2024 By Nucleus In Nucleus

Welcome to our latest vulnerability management webinar, hosted by Scott Kuffer and Gene Bandy. In this session, Scott and Gene dive deep into the complexities and challenges faced by organizations in managing vulnerabilities and what you can do about it. Key Topics Covered: Why Watch This Webinar? Don't forget to like, comment, and subscribe for more in-depth webinars and expert discussions on cybersecurity and vulnerability management!

View Video

Nucleus

Read more about 5 Things Holding Back Your Vulnerability Management Program and How to Overcome Them Step by Step

Ivanti EPM Cloud Services Appliance - Taking advantage of a backdoor to detect a vulnerability

May 28, 2024 By Diogo Ferreira & Fábio Freitas In BitSight

At Bitsight, part of the Vulnerability Research team's core work involves analyzing vulnerabilities in order to create detection capabilities that can be implemented on an Internet-wide scale.

Read Post

BitSight

Read more about Ivanti EPM Cloud Services Appliance - Taking advantage of a backdoor to detect a vulnerability

Top 9 Software Supply Chain Security Tools

May 28, 2024 By Avichay Attlan In Jit

Imagine this: an attacker sneaks a tiny backdoor into software that hundreds of companies use. It sounds like a plot from a spy movie, but it’s a real threat that recently impacted major Linux distributions through a compromised utility tool, XZ Utils. So far, in 2024, over 35 billion known records have been breached. The Linux attack, potentially in action and undetected since 2021, is just one of the many that highlight the alarming proliferation of supply chain attacks.

Read Post

Jit

Read more about Top 9 Software Supply Chain Security Tools

Fastify plugins as building blocks for a backend Node.js API

May 28, 2024 By Liran Tal In Snyk

In the world of building backend Node.js APIs, Fastify stands out with its plugin ecosystem and architecture approach, offering a compelling option beyond the conventional Express framework. This highly efficient, low-overhead web framework distinguishes itself through its remarkable speed and streamlined simplicity.

Read Post

Snyk

Read more about Fastify plugins as building blocks for a backend Node.js API

How to prevent SSRF Attacks in Node.js

May 27, 2024 By Snyk In Snyk

In today's video, we will be diving deep into keeping your Node.js applications secure from Server-side request forgery (SSRF). What are your experiences with SSRF? let us know in the comments below!

View Video

Snyk

Read more about How to prevent SSRF Attacks in Node.js

Foresiet Highlights Active Exploitation of Apache Flink Vulnerability

May 27, 2024 By Foresiet In Foresiet

Foresiet, your trusted cybersecurity advisor, brings attention to the recent addition of a security flaw impacting Apache Flink to the Known Exploited Vulnerabilities catalog by the U.S. Cybersecurity and Infrastructure Security Agency (CISA). Tracked as CVE-2020-17519, this vulnerability poses a significant risk due to its potential for active exploitation. Understanding the Vulnerability.

Read Post

Foresiet

Read more about Foresiet Highlights Active Exploitation of Apache Flink Vulnerability

Using Exports for Both ESM and CJS in an npm Package

May 26, 2024 By Snyk In Snyk

Watch the full video for more... About Snyk Snyk helps you find and fix vulnerabilities in your code, open-source dependencies, containers, infrastructure-as-code, software pipelines, IDEs, and more! Move fast, stay secure.

View Video

Snyk

Read more about Using Exports for Both ESM and CJS in an npm Package

Supporting ESM and CJS in an npm Package

May 25, 2024 By Snyk In Snyk

Watch the full video for more... About Snyk Snyk helps you find and fix vulnerabilities in your code, open-source dependencies, containers, infrastructure-as-code, software pipelines, IDEs, and more! Move fast, stay secure.

View Video

Snyk

Read more about Supporting ESM and CJS in an npm Package

Navigating GitLab Security: Recent Vulnerabilities (CVE-2024-4835) and Protective Measures

May 24, 2024 By Foresiet In Foresiet

Foresiet, your go-to cybersecurity ally, is here to illuminate recent security updates from GitLab and offer essential guidance to ensure your digital defenses remain resilient against emerging threats. GitLab's Critical Vulnerability Patch and Security Updates.

Read Post

Foresiet

Read more about Navigating GitLab Security: Recent Vulnerabilities (CVE-2024-4835) and Protective Measures

Vulnerabilities in BIG-IP Next Central Manager allows control of managed devices

May 24, 2024 By Wallarm In Wallarm

In May 2024, new vulnerabilities have been identified in BIG-IP Next Central Manager, raising considerable security concerns. This discovery follows closely on the heels of a critical vulnerability revealed in April within Palo Alto's firewalls with enabled GlobalProtect feature, which permitted unauthorized command execution. These recent findings underscore the persistent challenges in ensuring cybersecurity defenses and prompt updates for security solutions themselves.

Read Post